RHCOS 2 : Red Hat OpenShift Enterprise 2.2.7 (RHSA-2015:1844)

The remote Red Hat Enterprise Linux CoreOS 2 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:1844 advisory. - jenkins: Combination filter Groovy script unsecured SECURITY-125 CVE-2015-1806 - jenkins: directory traversal from artifacts via...

MAL-2026-1807 Malicious code in paramount-cmp-html5 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f49d119208d4541e1b4c557d446b21a7573c4649d3e8ab1116ff29d0c66b2da9 The package paramount-cmp-html5 was found to contain malicious code...

EUVD-2026-1807

Not used...

CVE-2025-1807

A vulnerability, which was classified as problematic, was found in Eastnets PaymentSafe 2.5.26.0. This affects an unknown part of the file /directRouter.rfc of the component Edit Manual Reply Handler. The manipulation of the argument Title leads to basic cross site scripting. It is possible to...

Linux Distros Unpatched Vulnerability : CVE-2011-1807

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Google Chrome before 11.0.696.71 does not properly handle blobs, which allows remote attackers to execute arbitrary code via unspecified vectors that trigger an...

CVE-2024-1807

The Product Sort and Display for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the psadupdateproductcatcustommetaajax function in all versions up to, and including, 2.4.1. This makes it possible for unauthenticated attacke...

CVE-2021-1807

A validation issue was addressed with improved input sanitization. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4. A local user may be able to write arbitrary files...

CVE-2020-1807

HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.188C00E74R3P8 have an improper authorization vulnerability. The software does not properly restrict certain user's modification of certain configuration file, successful exploit could allow the attacker to bypass app lock after a series...

CVE-2012-1807

Cross-site scripting XSS vulnerability in the web server in the ECOM Ethernet module in Koyo H0-ECOM, H0-ECOM100, H2-ECOM, H2-ECOM-F, H2-ECOM100, H4-ECOM, H4-ECOM-F, and H4-ECOM100 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2025-1807

A vulnerability, which was classified as problematic, was found in Eastnets PaymentSafe 2.5.26.0. This affects an unknown part of the file /directRouter.rfc of the component Edit Manual Reply Handler. The manipulation of the argument Title leads to basic cross site scripting. It is possible to...

CVE-2025-1807

CVE-2025-1807 affects Eastnets PaymentSafe 2.5.26.0. The vulnerability lies in the file /directRouter.rfc of the component Edit Manual Reply Handler, where manipulating the Title parameter leads to basic cross-site scripting. Attacks are described as remote and publicly disclosed; upgrading to ve...

CVE-2025-1807 Eastnets PaymentSafe Edit Manual Reply directRouter.rfc cross site scripting

A vulnerability, which was classified as problematic, was found in Eastnets PaymentSafe 2.5.26.0. This affects an unknown part of the file /directRouter.rfc of the component Edit Manual Reply Handler. The manipulation of the argument Title leads to basic cross site scripting. It is possible to...

CVE-2022-1807

Multiple SQLi vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 18.5 MR4 and version 19.0 MR1...

openSUSE Security Advisory (SUSE-SU-2024:1807-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-1807

The Product Sort and Display for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the psadupdateproductcatcustommetaajax function in all versions up to, and including, 2.4.1. This makes it possible for unauthenticated attacke...

Malicious code in wlwz-2312-1807 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9fd4e7e7097a33ed742fcf20bd3f997cfc4bc9a76408d9d52267db878ec4a242 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-339 Malicious code in wlwz-2312-1807 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9fd4e7e7097a33ed742fcf20bd3f997cfc4bc9a76408d9d52267db878ec4a242 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2023-1807

The Elementor Addons, Widgets and Enhancements – Stax plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.4.3. This is due to missing or incorrect nonce validation on the togglewidget function. This makes it possible for unauthenticated attackers t...

CVE-2022-1807

Multiple SQLi vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 18.5 MR4 and version 19.0 MR1...

CVE-2022-1807

Multiple SQLi vulnerabilities in Webadmin allow for privilege escalation from admin to super-admin in Sophos Firewall older than version 18.5 MR4 and version 19.0 MR1...